A Protected Data Domain (PDD) is a set of managed data releases, and allows the privacy risks of that data to be evaluated and mitigated. It is the unit of data for privacy governance and management. The PDD records data lineage, permitted recipient, purpose and lifetime of the data, and what privacy protections have been applied. Data in PDDs can be watermarked, enabling traceability in the event of a data breach.
Data owners apply data protection controls to PDDs, such as pseudonymisation, generalisation, and differential privacy. Datasets within a PDD retain referential integrity and linkability, but are not directly linkable to another PDD. This separation enables the data owner to calculate risk scores for each PDD and to reason about the implications of publishing or sharing data.